Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/2VoLcKODSaf3VWzbno7Q1wDnGEE.roa
File: 2VoLcKODSaf3VWzbno7Q1wDnGEE.roa (raw, json)
Hash identifier: y82Mm4Uvpfyxhq+RGSZqXIYixGYIiNoFyPtt8jVnmA8=
Subject key identifier: D9:5A:0B:70:A3:83:49:A7:F7:55:6C:DB:9E:8E:D0:D7:00:E7:18:41
Certificate issuer: /CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Certificate serial: 01856CB850690234D0091C9943C1D518A8E2
Authority key identifier: 37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/2VoLcKODSaf3VWzbno7Q1wDnGEE.roa
Signing time: Sun 01 Jan 2023 09:44:56 +0000
ROA not before: Sun 01 Jan 2023 09:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2830
IP address blocks: 145.32.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:50:69:02:34:d0:09:1c:99:43:c1:d5:18:a8:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Validity
Not Before: Jan 1 09:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d95a0b70a38349a7f7556cdb9e8ed0d700e71841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2c:68:89:36:f2:0c:65:fb:b6:0c:f7:c0:d2:
8b:64:07:71:b2:b7:66:76:84:97:8f:11:42:48:88:
eb:32:ca:b4:88:04:79:c0:5d:2c:8e:32:27:df:03:
88:d5:0f:bf:d5:2f:32:61:69:2a:f6:15:14:ed:d3:
66:c0:00:99:25:80:45:40:be:34:ca:8d:54:e4:fd:
b7:12:24:ef:67:68:75:e2:92:b6:f3:c2:2a:05:36:
98:dc:5a:c5:ab:ff:70:84:80:b8:0d:95:9f:30:fd:
52:02:ad:17:95:5f:27:c4:9c:2c:84:e8:09:ea:92:
90:10:2e:12:28:af:d0:82:cb:e1:73:c9:4e:e2:85:
8f:b4:ee:92:38:ed:ba:02:e8:ce:0e:bb:2c:1f:91:
52:ee:43:6a:01:0d:cb:2c:f9:19:bd:ee:e0:2d:48:
cb:88:3e:57:a6:d6:6c:0a:60:01:2c:56:88:c7:a1:
eb:5a:69:b1:b4:1a:6f:31:16:35:03:b9:7d:ce:6a:
07:79:f9:ef:47:11:41:76:c7:2f:62:1d:07:31:b9:
46:71:2d:b9:8a:d5:07:1f:f0:16:6d:e6:ef:95:a2:
2e:1c:06:03:02:ee:06:6c:a1:70:12:b1:75:aa:00:
7d:a8:42:5a:89:e7:35:b2:42:98:e4:ed:a5:42:d7:
90:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5A:0B:70:A3:83:49:A7:F7:55:6C:DB:9E:8E:D0:D7:00:E7:18:41
X509v3 Authority Key Identifier:
keyid:37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/2VoLcKODSaf3VWzbno7Q1wDnGEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.32.100.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:7f:75:39:41:63:9f:b8:eb:3b:ad:98:b3:cd:6c:53:f1:f9:
a1:7f:fa:71:9a:78:a8:f2:ec:94:a2:c9:f1:64:61:93:2d:c7:
7c:0f:26:a3:6e:c2:af:a0:77:77:18:3a:12:d9:dc:45:17:8b:
10:98:c5:4e:6e:28:2d:87:8e:01:bd:c9:0b:d2:63:e4:13:41:
b0:45:6a:ef:4d:17:38:b6:ec:d4:83:6c:51:7f:6d:5a:1a:7c:
81:b0:27:fe:7a:c6:13:3b:e4:ba:a5:1e:fb:a0:b8:67:0f:40:
09:97:27:ad:f8:f1:03:82:01:86:c1:a7:19:53:d5:39:58:c1:
ab:ce:2f:b6:bb:1c:c9:b8:a5:77:24:97:d9:63:b5:c2:78:50:
8d:f0:f0:0f:7f:63:0e:0c:42:e5:1e:3a:22:ec:36:1d:26:c4:
68:b3:7d:3e:ea:33:40:57:07:a7:f3:64:3a:0b:27:43:73:cb:
00:ca:af:22:c6:85:53:36:dc:52:73:83:66:96:c4:b4:2e:03:
37:84:50:eb:01:84:91:80:f6:93:27:73:58:6f:69:42:a6:c8:
4f:5f:1e:8f:57:80:be:67:a4:20:35:92:e4:ee:42:6d:79:9a:
d4:83:97:f1:a9:40:a5:ef:02:2c:82:02:d3:99:06:fe:ff:8c:
56:3a:a5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:22 2024 by rpki-client on console-ams.rpki-client.org